Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
File: TkJsh9-8xVLceQ_sPtHN56j4huk.mft (raw, json)
Hash identifier: vIMwswV50Ca+hVLpyjl7+bmms4bUgh2XGhwi9VuVByA=
Subject key identifier: DF:85:52:71:C9:7E:D7:66:C3:20:DF:21:5B:5C:C6:7D:5A:E4:C8:B4
Authority key identifier: 4E:42:6C:87:DF:BC:C5:52:DC:79:0F:EC:3E:D1:CD:E7:A8:F8:86:E9
Certificate issuer: /CN=4e426c87dfbcc552dc790fec3ed1cde7a8f886e9
Certificate serial: 0197B8907AA3AC7C735708F2455D49B4BD37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TkJsh9-8xVLceQ_sPtHN56j4huk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
Manifest number: 08F4
Signing time: Sat 28 Jun 2025 22:02:45 +0000
Manifest this update: Sat 28 Jun 2025 22:02:45 +0000
Manifest next update: Sun 29 Jun 2025 22:02:45 +0000
Files and hashes: 1: TkJsh9-8xVLceQ_sPtHN56j4huk.crl (hash: qBnbgN+ENKAR+1yMapKv0gIBtDVr9jE/irc5Wk5ntx0=)
2: o1pkGMrhjFIHajUuas6hn3OkprM.roa (hash: vhDUewSi85hdhWxPSoEhr0a9lvOVAXD09OTRvqe5guU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TkJsh9-8xVLceQ_sPtHN56j4huk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:7a:a3:ac:7c:73:57:08:f2:45:5d:49:b4:bd:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e426c87dfbcc552dc790fec3ed1cde7a8f886e9
Validity
Not Before: Jun 28 22:02:45 2025 GMT
Not After : Jun 29 22:02:45 2025 GMT
Subject: CN=df855271c97ed766c320df215b5cc67d5ae4c8b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d2:6a:72:eb:16:9d:e4:fd:55:47:8d:08:aa:
01:61:d5:79:73:46:ce:ed:f5:7c:58:05:91:19:8e:
4b:39:ce:73:0f:86:ee:1b:9c:4b:fd:a7:3c:ab:ba:
c1:21:0e:65:91:c8:8d:9c:01:20:d8:d4:aa:57:4b:
97:78:44:51:8f:3e:78:0f:58:e9:a1:a3:c3:c1:cb:
45:9f:c2:02:e7:2d:7b:77:db:65:3e:4c:d8:44:49:
bb:b4:23:77:4e:97:3f:55:3a:59:b1:e3:c5:7e:ff:
50:06:5e:8b:fe:c8:15:fd:bd:43:f7:b2:5a:e3:78:
f9:14:10:d0:92:1f:4f:4b:5d:ed:d1:07:87:a1:c1:
d1:6a:b1:04:0c:98:14:42:b5:b6:5c:fd:7b:77:11:
ce:25:b7:28:2a:2d:03:9d:44:28:ff:df:9b:e2:e7:
9b:45:02:99:5a:20:2a:2a:0b:2c:59:80:a5:20:49:
1c:83:9a:cb:27:e7:b0:d5:02:09:e2:7b:42:d6:a2:
4e:b2:6d:8d:57:ac:a1:f3:ba:28:35:d2:4c:7d:4b:
55:6b:9a:51:39:d3:8f:98:b9:bb:05:16:2a:d6:e9:
0c:a8:b5:d5:6e:92:c0:0d:16:5a:41:53:8f:ff:66:
bc:cb:02:8f:96:72:e0:5a:29:1f:91:a5:ea:21:0a:
b2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:85:52:71:C9:7E:D7:66:C3:20:DF:21:5B:5C:C6:7D:5A:E4:C8:B4
X509v3 Authority Key Identifier:
keyid:4E:42:6C:87:DF:BC:C5:52:DC:79:0F:EC:3E:D1:CD:E7:A8:F8:86:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkJsh9-8xVLceQ_sPtHN56j4huk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:b4:76:91:ec:6a:e3:fa:bb:cb:55:0f:84:43:ee:b7:fd:1b:
3f:da:ef:c5:71:85:e5:07:fc:f9:2a:1a:a7:dd:e3:9c:85:e9:
d3:66:ca:75:1d:a3:a0:d0:c5:09:40:2d:76:69:21:3e:14:89:
b5:e2:a6:73:d3:c9:5a:79:7c:ba:84:fb:d4:82:e4:5b:d9:a6:
ef:63:55:c1:22:9e:0c:28:bb:8a:24:66:1a:80:33:11:e0:d0:
0d:fa:93:a2:fe:bb:ed:da:af:03:ed:d6:b6:e8:f4:cd:05:a0:
db:9c:33:91:db:91:a1:81:77:34:6b:82:22:eb:62:6d:99:76:
8b:7b:33:ae:51:ec:73:15:05:9b:44:2e:c2:29:da:6c:86:e6:
b4:09:96:53:1f:32:87:84:43:bc:83:36:3f:69:f2:13:d1:58:
f5:af:a7:26:68:fa:5c:fd:3c:42:71:1b:b8:5e:90:d5:5b:5a:
bd:92:c8:6e:45:52:eb:ad:1c:fd:c3:f1:02:c3:cd:70:06:f9:
b0:78:08:02:60:0d:43:8b:b4:41:a2:e6:1a:19:78:56:44:22:
3a:fe:20:73:00:e9:29:ee:f7:0b:81:b6:d2:19:10:0e:fd:da:
6d:90:ec:62:a4:19:9b:a0:45:38:8b:a5:c6:a7:03:68:b7:f6:
1a:fd:51:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 07:57:42 2025 by rpki-client